API GW와 EKS Cluster를 안전하게 Integration하는 방법(Rest API)

VPC Link기능을 사용하면, 백엔드를 Public 노출 없이 안전한 경로로 API Gateway와 통합할 수 있습니다. Rest API의 VPC Link는 VPC의 Private Subnet의 NLB를 Privatelink를 경유하여 API Gateway와의 Secure Connection을 제공합니다. 격리된 AWS Managed VPC와 AWS Backbone을 통해 통신하기 때문에 외부에 노출이 되거나 권한이 없는 타계정에서 접근할 수 없습니다.

https://aws.amazon.com/ko/blogs/compute/understanding-vpc-links-in-amazon-api-gateway-private-integrations/

• Reference Architecture
  • Payment System Interface Modernization on AWS
    • https://docs.aws.amazon.com/ko_kr/architecture-diagrams/latest/payment-system-interface-modernization/payment-system-interface-modernization.html
  • Open Banking on AWS
    • https://d1.awsstatic.com/architecture-diagrams/ArchitectureDiagrams/open-banking-on-aws.pdf?did=wp_card&trk=wp_card
    • AWS PrivateLink provides secure private connectivity on the Amazon network between VPCs and services hosted on AWS or on-premises.
• White Paper - Best Practices for Designing Amazon API Gateway Private APIs and Private Integration
  • https://docs.aws.amazon.com/whitepapers/latest/best-practices-api-gateway-private-apis-integration/best-practices-api-gateway-private-apis-integration.html
• Developer Guide - Tutorial: Build a REST API with API Gateway private integration
  • https://docs.aws.amazon.com/apigateway/latest/developerguide/getting-started-with-private-integration.html